We are independent & ad-supported. We may earn a commission for purchases made through our links.
Advertiser Disclosure
Our website is an independent, advertising-supported platform. We provide our content free of charge to our readers, and to keep it that way, we rely on revenue generated through advertisements and affiliate partnerships. This means that when you click on certain links on our site and make a purchase, we may earn a commission. Learn more.
How We Make Money
We sustain our operations through affiliate commissions and advertising. If you click on an affiliate link and make a purchase, we may receive a commission from the merchant at no additional cost to you. We also display advertisements on our website, which help generate revenue to support our work and keep our content free for readers. Our editorial team operates independently of our advertising and affiliate partnerships to ensure that our content remains unbiased and focused on providing you with the best information and recommendations based on thorough research and honest evaluations. To remain transparent, we’ve provided a list of our current affiliate partners here.

Our Promise to you

Founded in 2002, our company has been a trusted resource for readers seeking informative and engaging content. Our dedication to quality remains unwavering—and will never change. We follow a strict editorial policy, ensuring that our content is authored by highly qualified professionals and edited by subject matter experts. This guarantees that everything we publish is objective, accurate, and trustworthy.

Over the years, we've refined our approach to cover a wide range of topics, providing readers with reliable and practical advice to enhance their knowledge and skills. That's why millions of readers turn to us each year. Join us in celebrating the joy of learning, guided by standards you can trust.

What is Pharming?

By G. Wiesen
Updated: May 16, 2024

Pharming is a type of Internet fraud in which an attempt is made to redirect Internet users from legitimate websites to fraudulent or potentially malicious ones. It is somewhat similar to “phishing,” in which a person is sent an email or other type of “bait” message in an attempt to have that person click on a link in the email. This link directs him or her to a false website similar to a legitimate one in the hopes that he or she will enter sensitive or private information that is then gathered by the malicious website. Pharming, however, attempts to redirect computer users to fraudulent websites without any type of bait message or other action by a user.

While both types of fraud seek to direct a computer user to a malicious website where private information can be gathered, phishing requires a user to click on a link or otherwise actively be directed to the fraudulent website. Pharming attacks seek to inherently corrupt the process by which a person accesses Internet websites, in order to redirect a person to a malicious website without the user ever knowing an attack is occurring. This process can be achieved principally by one of two methods: either through a compromised Domain Name System (DNS) server or a compromised router or network.

The most potentially devastating type of pharming attack would involve corrupting or “poisoning” a DNS server. DNS servers direct Internet users to websites by converting textual hostnames such as www.wisegeek.com into numerical Internet protocol (IP) addresses that servers recognize. This process allows a user to type in an easily remembered hostname and be properly directed to a site that actually has a numerical address on the Internet.

By poisoning a DNS server, a pharming attack would allow an attacker to redirect large numbers of users from the legitimate website to a malicious website, without the users ever realizing an attack has occurred. The users would have typed the correct hostname but would be directed by the poisoned DNS server to the IP address of the malicious website. This website could then install malicious software onto the users’ computers, or simply appear legitimate and wait for the users to enter private information for fraudulent purposes.

A router or other type of network hardware can also be utilized as part of a pharming attack. This could be achieved through malicious software that rewrites the firmware built into the device. Firmware is the software installed within a device itself, such as a router, which handles the basic functions of the device regardless of the other hardware or software used with it.

In routers and network servers, this firmware usually includes directions for which DNS server the system should use. A pharming attack could potentially change this firmware to indicate a specific DNS server controlled by the person coordinating the attack, or that has already been poisoned. Unfortunately, antivirus and firewall programs cannot protect users from pharming attacks, and more sophisticated programs are usually needed to secure network servers and routers.

EasyTechJunkie is dedicated to providing accurate and trustworthy information. We carefully select reputable sources and employ a rigorous fact-checking process to maintain the highest standards. To learn more about our commitment to accuracy, read our editorial process.
Discussion Comments
EasyTechJunkie, in your inbox

Our latest articles, guides, and more, delivered daily.

EasyTechJunkie, in your inbox

Our latest articles, guides, and more, delivered daily.